8. Cisco to Avaya Comparison
This section compares various Cisco IOS ACL commands into their Avaya equivalents.
Config Task
Description
Deny src-ip 192.168.1.0/24
Allow everyone else
Apply ACLs to interfaces
Permit SMTP connection
from any host to mail server
Permit TCP connections to
port range between 1024
and 2024 to subnet
10.1.1.0/24
Permit UDP connections to
port range between 1024
and 2024 to subnet
10.1.1.0/24
Bootps
Bootpc
IP Range
IP Range
September 2015
Cisco IOS
access-list <1> deny
<192.168.1.0> <0.0.0.255>
access-list <1> permit any
interface range <gi1/0/1 - 20>
ip access-group <1> in
exit
access-list <100> permit tcp any
host <10.1.1.1> eq smtp
access-list <100> permit tcp any
<10.1.1.0> <0.0.0.255> range
<1024> <2024>
access-list <100> permit udp any
<10.1.1.0> <0.0.0.255> range
<1024> <2024>
10 permit udp any any eq bootps
20 permit udp any any eq bootpc
30 deny ip 10.57.240.0 0.0.1.255
host 128.1.0.1
110 permit ip host 10.57.240.1
10.0.0.0 0.255.255.255
Avaya Inc. – External Distribution
Avaya ACLI
qos traffic-profile classifier name <one> src-ip
<192.168.1.0/24> drop-action <enable> block
<one>
qos traffic-profile set port <1-20> name <one>
show qos traffic-profile set
qos traffic-profile classifier name <one> dst-ip
<10.1.1.1/32> protocol <6> dst-port-min <25> dst-
port-max <25> block <one>
qos traffic-profile classifier name <one> src-ip
10.1.1.1/32> protocol <6> src-port-min <1024>
src-port-max <2048> block <one>
qos traffic-profile classifier name <one> src-ip
10.1.1.1/32> protocol <17> src-port-min <1024>
src-port-max <2048> block <one>
qos traffic-profile classifier name <one> addr-type
<ipv4> protocol <17> dst-port-min <67> dst-port-
max <67> block one
qos traffic-profile classifier name <one> addr-type
<ipv4> protocol <17> dst-port-min <68> dst-port-
max <68> block one
qos traffic-profile classifier name <one> src-ip
<10.57.240.0/24> dst-ip <128.1.0.2/32> drop-
action enable block <one>
qos traffic-profile classifier name <one> src-ip
<10.57.241.0/24> dst-ip <128.1.0.2/32> drop-
action enable block <one>
qos traffic-profile classifier name <one> src-ip
<10.57.240.1/32> dst-ip <10.0.0.0/8> block <one>
avaya.com
58